ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Feishu Cli

v1.0.0

Full-featured Feishu CLI tool enabling seamless Markdown and document conversions plus management of docs, sheets, messages, calendars, tasks, permissions, a...

0· 232·1 current·1 all-time
by@niesongyang
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The declared registry metadata lists no required environment variables or credentials, but SKILL.md clearly requires FEISHU_APP_ID and FEISHU_APP_SECRET (or a config file) to function. Requiring Feishu app credentials is reasonable for a Feishu CLI, but the metadata omission is an inconsistency that reduces transparency.
!
Instruction Scope
The runtime instructions include a recommended 'curl -fsSL https://raw.githubusercontent.com/.../install.sh | bash' one-line installer and many example feishu-cli commands. The doc expects the agent/user to run an external install script and to create/configure credentials. The instructions do not ask to read unrelated local files, but they do direct execution of remote code which substantially expands runtime scope.
!
Install Mechanism
There is no packaged install spec in the skill registry; SKILL.md recommends piping a raw GitHub-hosted install.sh to bash. Executing a remote script via curl|bash is high-risk (it will download and run arbitrary code). The fallback (GitHub releases) is better, but the primary recommendation is an unverified remote-exec pattern.
!
Credentials
The CLI legitimately needs FEISHU_APP_ID and FEISHU_APP_SECRET (or a configured local credential file), which are proportionate to the stated purpose. However, the published skill metadata did not declare these required env vars or a primary credential, creating a transparency gap. No unrelated creds are requested.
Persistence & Privilege
No elevated persistence flags (always:true) or other special privileges are requested. The skill is user-invocable and allows autonomous invocation (platform default). There is no evidence it modifies other skills or system-wide configs beyond its own setup steps.
What to consider before installing
This skill appears to be a Feishu CLI wrapper, but exercise caution before installing or running it. Key things to consider: - The SKILL.md asks you to run a remote installer with 'curl | bash' from a GitHub raw URL — avoid running that verbatim. Instead, inspect the install.sh content first (download it and review), or download a release archive and verify checksums before executing. - The registry metadata did not declare the FEISHU_APP_ID/FEISHU_APP_SECRET that the docs require. Treat that as a transparency/packaging issue and ask the publisher to correct it. - Only provide FEISHU_APP_ID/APP_SECRET if you trust the code and understand the app permissions; prefer creating a limited-scope app/key with least privileges. - If you want to try the tool safely: run the installer in a disposable container/VM, or build from the project's released source after reviewing it; do not let the agent autonomously run the installer without your approval. - If possible, request the skill author or publisher info (homepage, verified repo, release signatures) before use. The lack of a homepage/official source combined with an install-via-remote-script pattern is the main red flag.

Like a lobster shell, security has layers — review code before you run it.

latestvk977rs9588ndvwqyp6f99f3tp582yw5e

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments